Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
File: TStBlpVqQxU0D4J9mSoPeikoTD4.mft (raw, json)
Hash identifier: BPflGV50viP+wi5M7snBiQkskSmB7PQ64DGTLyGVaic=
Subject key identifier: FB:7C:A0:07:3C:2E:46:8F:E1:CC:B5:E1:43:3B:6E:6B:4E:94:56:65
Authority key identifier: 4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E
Certificate issuer: /CN=4d2b4196956a4315340f827d992a0f7a29284c3e
Certificate serial: 0199FD3471630E35BE0669824775AF77E4A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
Manifest number: 1372
Signing time: Sun 19 Oct 2025 16:01:36 +0000
Manifest this update: Sun 19 Oct 2025 16:01:36 +0000
Manifest next update: Mon 20 Oct 2025 16:01:36 +0000
Files and hashes: 1: TStBlpVqQxU0D4J9mSoPeikoTD4.crl (hash: E8EOR4jhaLRKkGWeCObTDxZ3QdqXaETg8vKgl/FtjO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fd:34:71:63:0e:35:be:06:69:82:47:75:af:77:e4:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d2b4196956a4315340f827d992a0f7a29284c3e
Validity
Not Before: Oct 19 16:01:36 2025 GMT
Not After : Oct 20 16:01:36 2025 GMT
Subject: CN=fb7ca0073c2e468fe1ccb5e1433b6e6b4e945665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8a:34:6d:e8:1e:16:7f:ef:aa:c3:ff:8e:e6:
96:0b:ad:0b:b0:b0:8c:78:20:01:ae:a7:b2:dc:b3:
bd:52:07:4d:3c:06:b0:9f:2c:5c:46:ef:5c:86:a8:
94:2a:48:3d:c4:c5:a1:10:d2:e5:6a:29:51:58:a4:
1d:ec:9a:41:56:4d:ed:c7:1b:ce:cc:75:12:bb:8e:
c2:58:03:21:8d:1f:e8:f1:52:cc:39:d5:dd:cf:dc:
45:c5:d1:76:e8:40:d6:44:4b:1f:26:20:51:b7:37:
39:5c:b8:1e:aa:5d:98:f4:e1:1a:e2:d6:43:b6:71:
3a:87:1c:4d:5b:82:07:b4:7b:1b:55:06:87:aa:70:
7b:6a:4b:a0:31:c3:a3:38:96:4f:bd:38:71:e2:92:
22:ca:03:e5:db:44:c2:82:e1:14:c6:c4:f9:d6:23:
35:93:70:9c:3b:8f:a2:b9:3e:ac:df:44:3e:56:c3:
a9:4c:31:f8:c1:a1:f1:12:10:57:2a:85:19:f1:2b:
90:84:03:5b:d7:cf:33:0b:13:01:e1:cf:ae:e6:b6:
bd:80:a9:c7:a2:da:c2:e3:22:39:85:1d:17:9e:59:
a2:fe:5e:ab:40:e7:c0:96:f3:fe:18:ac:35:04:38:
8d:e7:f6:a8:e3:f1:34:62:2f:bc:f0:b8:13:61:3b:
87:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7C:A0:07:3C:2E:46:8F:E1:CC:B5:E1:43:3B:6E:6B:4E:94:56:65
X509v3 Authority Key Identifier:
keyid:4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:df:e3:29:b0:fc:16:10:fe:f9:87:8d:a4:97:46:43:57:52:
7e:f9:f4:33:e0:f5:0a:3d:d9:36:68:b5:bf:0c:bd:7b:d1:f1:
91:6f:4a:89:b0:9b:7f:f3:48:d6:e9:82:ef:21:34:42:f5:8b:
ba:07:6d:f1:b5:69:56:2e:b7:ab:fb:3b:49:0b:b0:4c:2a:8a:
3d:47:ab:e2:00:03:d8:7d:d0:cb:c8:41:ea:69:61:2d:6f:fa:
0a:e6:ae:16:a9:eb:18:43:ad:3e:ee:0f:44:fa:38:70:ad:cd:
a5:38:72:bd:15:0c:89:43:92:97:60:be:25:1f:49:9a:95:14:
ed:f7:07:99:75:87:33:17:59:db:5a:41:e6:a1:30:64:6a:52:
5f:53:df:85:2b:14:02:ef:be:a4:6d:6a:d6:e0:b9:d9:4f:cb:
82:07:8a:66:c0:00:2f:ca:cb:4d:c8:60:1b:66:d6:7e:f8:4b:
6e:64:9f:b0:da:b1:b2:55:13:b0:c1:71:9d:30:d3:25:d0:ac:
cd:e0:f5:ac:99:7b:8a:10:3b:59:da:e1:9c:f6:36:98:7b:7f:
37:4d:bb:54:df:df:ff:b7:37:3c:6f:6c:2a:6b:fd:dc:95:53:
01:58:03:02:68:9a:26:86:52:2f:40:c8:66:a0:37:dd:5f:16:
54:a8:9f:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 20:52:31 2025 by rpki-client